ASB-A-430047417

See a problem?
Import Source
https://storage.googleapis.com/android-osv/ASB-A-430047417.json
JSON Data
https://api.osv.dev/v1/vulns/ASB-A-430047417
Aliases
Published
2026-03-01T00:00:00Z
Modified
2026-04-17T15:55:28.020024Z
Summary
[none]
Details

In hasInteractAcrossUsersFullPermission of AppInfoBase.java, there is a possible cross-user permission bypass due to a confused deputy. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.

References

Affected packages

Android
platform/packages/apps/Settings

Package

Name
platform/packages/apps/Settings

Affected ranges

Type
ECOSYSTEM
Events
Introduced
16-qpr2-next:0
Fixed
16-qpr2-next:2026-03-01

Affected versions

Other
16-qpr2-next

Ecosystem specific 

{
    "severity": "High",
    "fixes": [
        "https://android.googlesource.com/platform/packages/apps/Settings/+/bd4d57ade07792f2a9160acbe480603b30e79917"
    ],
    "spl": "2026-03-01",
    "vanir_signatures": [
        {
            "signature_version": "v1",
            "source": "https://android.googlesource.com/platform/packages/apps/Settings/+/bd4d57ade07792f2a9160acbe480603b30e79917",
            "target": {
                "file": "src/com/android/settings/applications/AppInfoBase.java"
            },
            "deprecated": false,
            "digest": {
                "line_hashes": [
                    "287522374173342379004190520511098448565",
                    "175534546121088110630736647175130161778",
                    "377102906258055979774208360732591941",
                    "269236783169751520630210896829537473538",
                    "138435437311815241576392094391464378779",
                    "81266923578977761805050889528417129521",
                    "174150244572001986185618242056333054277",
                    "223427958324231072462668765542242818489"
                ],
                "threshold": 0.9
            },
            "signature_type": "Line",
            "id": "ASB-A-430047417-315061fe"
        },
        {
            "signature_version": "v1",
            "source": "https://android.googlesource.com/platform/packages/apps/Settings/+/bd4d57ade07792f2a9160acbe480603b30e79917",
            "target": {
                "function": "hasInteractAcrossUsersFullPermission",
                "file": "src/com/android/settings/applications/AppInfoBase.java"
            },
            "deprecated": false,
            "digest": {
                "function_hash": "75749725220562090698061381139683912892",
                "length": 536.0
            },
            "signature_type": "Function",
            "id": "ASB-A-430047417-cbb2d544"
        }
    ],
    "types": [
        "EoP"
    ]
}

Database specific

source 
"https://storage.googleapis.com/android-osv/ASB-A-430047417.json"
platform/packages/apps/Settings

Package

Name
platform/packages/apps/Settings

Affected ranges

Type
ECOSYSTEM
Events
Introduced
15:0
Fixed
15:2026-03-01

Affected versions

Other
15

Ecosystem specific 

{
    "severity": "High",
    "fixes": [
        "https://android.googlesource.com/platform/packages/apps/Settings/+/f9821f9f4f5661e64a35551dc301c67df75cc1d4"
    ],
    "spl": "2026-03-01",
    "vanir_signatures": [
        {
            "signature_version": "v1",
            "source": "https://android.googlesource.com/platform/packages/apps/Settings/+/f9821f9f4f5661e64a35551dc301c67df75cc1d4",
            "target": {
                "file": "src/com/android/settings/applications/AppInfoBase.java"
            },
            "deprecated": false,
            "digest": {
                "line_hashes": [
                    "287522374173342379004190520511098448565",
                    "175534546121088110630736647175130161778",
                    "377102906258055979774208360732591941",
                    "269236783169751520630210896829537473538",
                    "138435437311815241576392094391464378779",
                    "81266923578977761805050889528417129521",
                    "174150244572001986185618242056333054277",
                    "223427958324231072462668765542242818489"
                ],
                "threshold": 0.9
            },
            "signature_type": "Line",
            "id": "ASB-A-430047417-3c45771a"
        },
        {
            "signature_version": "v1",
            "source": "https://android.googlesource.com/platform/packages/apps/Settings/+/f9821f9f4f5661e64a35551dc301c67df75cc1d4",
            "target": {
                "function": "hasInteractAcrossUsersPermission",
                "file": "src/com/android/settings/applications/AppInfoBase.java"
            },
            "deprecated": false,
            "digest": {
                "function_hash": "75749725220562090698061381139683912892",
                "length": 536.0
            },
            "signature_type": "Function",
            "id": "ASB-A-430047417-cf832787"
        }
    ],
    "types": [
        "EoP"
    ]
}

Database specific

source 
"https://storage.googleapis.com/android-osv/ASB-A-430047417.json"
platform/packages/apps/Settings

Package

Name
platform/packages/apps/Settings

Affected ranges

Type
ECOSYSTEM
Events
Introduced
16:0
Fixed
16:2026-03-01

Affected versions

Other
16

Ecosystem specific 

{
    "severity": "High",
    "fixes": [
        "https://android.googlesource.com/platform/packages/apps/Settings/+/2860bd01810adb2d0f00fba8f327cdae3f20ab9d"
    ],
    "spl": "2026-03-01",
    "vanir_signatures": [
        {
            "signature_version": "v1",
            "source": "https://android.googlesource.com/platform/packages/apps/Settings/+/2860bd01810adb2d0f00fba8f327cdae3f20ab9d",
            "target": {
                "file": "src/com/android/settings/applications/AppInfoBase.java"
            },
            "deprecated": false,
            "digest": {
                "line_hashes": [
                    "287522374173342379004190520511098448565",
                    "175534546121088110630736647175130161778",
                    "377102906258055979774208360732591941",
                    "269236783169751520630210896829537473538",
                    "138435437311815241576392094391464378779",
                    "81266923578977761805050889528417129521",
                    "174150244572001986185618242056333054277",
                    "223427958324231072462668765542242818489"
                ],
                "threshold": 0.9
            },
            "signature_type": "Line",
            "id": "ASB-A-430047417-2f3918b5"
        },
        {
            "signature_version": "v1",
            "source": "https://android.googlesource.com/platform/packages/apps/Settings/+/2860bd01810adb2d0f00fba8f327cdae3f20ab9d",
            "target": {
                "function": "hasInteractAcrossUsersFullPermission",
                "file": "src/com/android/settings/applications/AppInfoBase.java"
            },
            "deprecated": false,
            "digest": {
                "function_hash": "75749725220562090698061381139683912892",
                "length": 536.0
            },
            "signature_type": "Function",
            "id": "ASB-A-430047417-bbfcc6e2"
        }
    ],
    "types": [
        "EoP"
    ]
}

Database specific

source 
"https://storage.googleapis.com/android-osv/ASB-A-430047417.json"
platform/packages/apps/Settings

Package

Name
platform/packages/apps/Settings

Affected ranges

Type
ECOSYSTEM
Events
Introduced
16-qpr2:0
Fixed
16-qpr2:2026-03-01

Affected versions

Other
16-qpr2

Ecosystem specific 

{
    "severity": "High",
    "fixes": [
        "https://android.googlesource.com/platform/packages/apps/Settings/+/fe9952ef71d7884a4ff6494f9c3caa151b455016"
    ],
    "spl": "2026-03-01",
    "vanir_signatures": [
        {
            "signature_version": "v1",
            "source": "https://android.googlesource.com/platform/packages/apps/Settings/+/fe9952ef71d7884a4ff6494f9c3caa151b455016",
            "target": {
                "function": "hasInteractAcrossUsersFullPermission",
                "file": "src/com/android/settings/applications/AppInfoBase.java"
            },
            "deprecated": false,
            "digest": {
                "function_hash": "75749725220562090698061381139683912892",
                "length": 536.0
            },
            "signature_type": "Function",
            "id": "ASB-A-430047417-12e94f6a"
        },
        {
            "signature_version": "v1",
            "source": "https://android.googlesource.com/platform/packages/apps/Settings/+/fe9952ef71d7884a4ff6494f9c3caa151b455016",
            "target": {
                "file": "src/com/android/settings/applications/AppInfoBase.java"
            },
            "deprecated": false,
            "digest": {
                "line_hashes": [
                    "287522374173342379004190520511098448565",
                    "175534546121088110630736647175130161778",
                    "377102906258055979774208360732591941",
                    "269236783169751520630210896829537473538",
                    "138435437311815241576392094391464378779",
                    "81266923578977761805050889528417129521",
                    "174150244572001986185618242056333054277",
                    "223427958324231072462668765542242818489"
                ],
                "threshold": 0.9
            },
            "signature_type": "Line",
            "id": "ASB-A-430047417-46b51ddc"
        }
    ],
    "types": [
        "EoP"
    ]
}

Database specific

source 
"https://storage.googleapis.com/android-osv/ASB-A-430047417.json"
platform/packages/apps/Settings

Package

Name
platform/packages/apps/Settings

Affected ranges

Type
ECOSYSTEM
Events
Introduced
14:0
Fixed
14:2026-03-01

Affected versions

Other
14

Ecosystem specific 

{
    "severity": "High",
    "fixes": [
        "https://android.googlesource.com/platform/packages/apps/Settings/+/da0588bab34f72113fc11625abb14cffefcddc10"
    ],
    "spl": "2026-03-01",
    "vanir_signatures": [
        {
            "signature_version": "v1",
            "source": "https://android.googlesource.com/platform/packages/apps/Settings/+/da0588bab34f72113fc11625abb14cffefcddc10",
            "target": {
                "function": "hasInteractAcrossUsersPermission",
                "file": "src/com/android/settings/applications/AppInfoBase.java"
            },
            "deprecated": false,
            "digest": {
                "function_hash": "75749725220562090698061381139683912892",
                "length": 536.0
            },
            "signature_type": "Function",
            "id": "ASB-A-430047417-4c82d8f2"
        },
        {
            "signature_version": "v1",
            "source": "https://android.googlesource.com/platform/packages/apps/Settings/+/da0588bab34f72113fc11625abb14cffefcddc10",
            "target": {
                "file": "src/com/android/settings/applications/AppInfoBase.java"
            },
            "deprecated": false,
            "digest": {
                "line_hashes": [
                    "287522374173342379004190520511098448565",
                    "175534546121088110630736647175130161778",
                    "377102906258055979774208360732591941",
                    "269236783169751520630210896829537473538",
                    "138435437311815241576392094391464378779",
                    "81266923578977761805050889528417129521",
                    "174150244572001986185618242056333054277",
                    "223427958324231072462668765542242818489"
                ],
                "threshold": 0.9
            },
            "signature_type": "Line",
            "id": "ASB-A-430047417-ccca4078"
        }
    ],
    "types": [
        "EoP"
    ]
}

Database specific

source 
"https://storage.googleapis.com/android-osv/ASB-A-430047417.json"